Modern vehicles are built on layers of software that few teams fully control and even fewer can fully see. Between supplier-delivered components, open source dependencies, and long product lifecycles, gaining a clear, reliable view of what’s actually in a vehicle—and...
Open source software is deeply woven into modern embedded development. From compilers and build systems to networking stacks and device libraries, it enables teams to move faster and innovate more efficiently. But speed introduces tradeoffs. The same open source...
URGENT/11 vulnerabilities allow attackers to take control of embedded devices remotely without any user interaction and often without triggering traditional security defenses. Discovered in 2019, these eleven flaws in the IPnet TCP/IP stack affect millions of devices...
Most of the code running in your product probably isn’t code you wrote. Open source libraries, vendor SDKs, and firmware components all become part of your attack surface the moment they’re compiled into your build. Third-party software risk is the...
Generating an accurate Software Bill of Materials (SBOM) for C/C++ code is notoriously difficult. Unlike ecosystems with centralized package managers, C/C++ projects rely on vendored code, static linkage, and manual dependency management, which causes most SBOM tools...
